Overview
Skills
Job Details
Description
Client is seeking a Vulnerability Analyst to join our team supporting an important US government agency in the National Capital Region. This is an exciting opportunity to work with a team, an independent agency of the United States Government. The role is a part of the Patch and Vulnerability Management Group (PVMG), the group which tracks vulnerabilities and coordinates their remediation. The successful candidate will assist with web application vulnerability scanning and remediation solutions by supporting the web application scanning program and reporting to the vulnerability management team lead.
Primary Responsibilities:
Work within the scope of web scanning processes and procedures
Develop and improve processes and other documentation
Conduct web application scheduling, scanning, analysis, and reporting
Coordinate scanning schedules and documentation
Conduct analysis of web vulnerabilities
Interface with client, client's customer, and operation teams
Qualifications
Education and Experience:
Associates Degree in computer science or related technical discipline and four (4) years or more experience; Six (6) years of related experience in lieu of Degree.
2+ years' of experience performing web application vulnerability scanning using Qualys or similar industry tools.
3+ years' of experience with analyzing vulnerabilities and in developing action plans for resolving them.
2+ years' of experience developing and documenting standard operations procedures and work instructions for web application vulnerability scanning.
Required Skills:
Documented experience with the Qualys or other web scanning tools. Candidate should be familiar with vulnerability scanning, vulnerability identification, and standard remediation engagement related to security scanning tools.
Broad knowledge of security scanning tools, National Institute of Standards and Technology (NIST), network communication, and troubleshooting.
Comfortable using the Microsoft Office suite of tools including Outlook, Word, Excel, PowerPoint, and Visio.
Strong communication skills and the ability to interact with a large community of stakeholders effectively and accurately in person and in writing
All candidates for consideration must be eligible to obtain and maintain a Public Trust clearance.
Desired Skills:
Experience with Device and Web Application scanning tools (Nessus, Qualys, BigFix, or similar)
Experience working with cloud systems and services
Have the ability to think outside the box to complete a task or troubleshoot
Demonstrated ability to complete, follow-up, and improve on assignments
Process and workflow documentation skill is a plus
Experience working with ServiceNow, Jira or similar tool is a plus